Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: Advanced Guestbook 2.3.1 (Admin.php) Remote File Include
From: simo64 () morx org
Date: 7 Nov 2006 03:35:34 -0000

in admin.php we have

..........
$include_path = dirname(__FILE__); // <== 
require_once $include_path."/admin/config.inc.php";
require_once $include_path."/lib/$DB_CLASS";
...........

At line 21 the variable $include_path is setted as 'dirname(__FILE__)' so remote file inclusion is not possible :)

Regards


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault